Tuffy Site Security
Tuffy's site is fully protected by GeoTrust SSL Encryption and is Visa PCI compliant, see below.
What is HTTPS?
HTTPS (Hyper Text Transfer Protocol Secure) is a secure version of the Hyper Text Transfer Protocol (http). It is a secure means of transferring data using the http protocol in the World Wide Web where secure e-commerce transactions, such as online banking transactions and other financial transactions are involved. In other words, https encrypts the session with a digital certificate i.e., HTTP over Secure Sockets Layer (SSL) which can be used by Web browsers and HTTPS - capable client programs. So if the website begins with https:// instead of http://, it is a secure site. Almost 99% of the browsers can connect to web servers either using http or https.
Most of the web browsers like IE, Firefox etc., display a pad ”lock” icon to indicate the website is secure, which also displays https in the address bar. This padlock icon is displayed only when an SSL certificate is installed by their web server. If the padlock icon and the web link begin with https then it can be concluded that the site is legitimate and secure to provide confidential information or carry financial transactions. Hence the SSL certificates work with the combination of programs including the browser programs which takes care of the encryption/decryption routines that exist on the web hosting servers. Most typically HTTP data is sent over TCP/IP port 80, whereas HTTPS data is sent over port 443.
How does SSL work?
SSL uses a cryptographic system that uses two keys to encrypt data, firstly a public key known to everyone and the second is the private key known only to the recipient. SSL Encryption is a unique and effective way to achieve data and ecommerce security. So when a SSL - Digital Certificate is installed on the website, a padlock icon can be seen at the bottom area of the navigator and also the address in the address bar will begin with "https" instead of http during a secure session, which means that the data is encrypted.
Why is an SSL certificate required?
Internet trends have boomed in popularity and are creating more opportunities for both commercial and non-commercial sectors. In today's date the Internet has paved way for e-commerce business at large thereby increasing more online transactions. Due to fear of scam, people are not ready to submit their private details on the web unless they know the transaction/information they provide would be secure. The best way to provide web security and gain more customers is by installing an SSL certificate to prove the legitimacy of your website.
What is SSL Encryption and why is it required?
SSL Encryption or Https is a technique used to safeguard private information which is sent via Internet. To prove the site's legitimacy, the SSL encryption uses a PKI (Public Key Infrastructure) - public/private key, to encrypt IDs, documents, or messages to securely transmit the information in the World Wide Web. In order to show that our transmission is encrypted, most browsers will display a small icon that would look like a pad “lock” or a key and the URL begins with "https" instead of "http”. SSL Encryption or https from a digital certification authority will help a secure site with confidential information on web.
PCI Compliance Acceleration Program
Visa developed the PCI Compliance Acceleration Program to provide financial incentives and establish enforcement provisions for acquirers to ensure their merchants validate PCI DSS compliance. In accordance with the PCI Compliance Acceleration Program, acquirers must additionally ensure that all Level 1 and 2 merchants validate that prohibited data is not retained.